added tomcat development configuration template with ssl connector enabled.
This commit is contained in:
parent
dc7449a6e4
commit
a2e06181b8
|
@ -0,0 +1,5 @@
|
||||||
|
For development, save server.dev.xml as server.xml and change the ssl keystorepass to match
|
||||||
|
the keystorepass you use for your development jre.
|
||||||
|
|
||||||
|
This step is to enabled tomcat ssl connector which is needed for the swing client to use the
|
||||||
|
remote Server and Status service.
|
|
@ -0,0 +1,129 @@
|
||||||
|
<?xml version='1.0' encoding='utf-8'?>
|
||||||
|
<!--
|
||||||
|
Licensed to the Apache Software Foundation (ASF) under one or more
|
||||||
|
contributor license agreements. See the NOTICE file distributed with
|
||||||
|
this work for additional information regarding copyright ownership.
|
||||||
|
The ASF licenses this file to You under the Apache License, Version 2.0
|
||||||
|
(the "License"); you may not use this file except in compliance with
|
||||||
|
the License. You may obtain a copy of the License at
|
||||||
|
|
||||||
|
http://www.apache.org/licenses/LICENSE-2.0
|
||||||
|
|
||||||
|
Unless required by applicable law or agreed to in writing, software
|
||||||
|
distributed under the License is distributed on an "AS IS" BASIS,
|
||||||
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||||
|
See the License for the specific language governing permissions and
|
||||||
|
limitations under the License.
|
||||||
|
-->
|
||||||
|
<!-- Note: A "Server" is not itself a "Container", so you may not
|
||||||
|
define subcomponents such as "Valves" at this level.
|
||||||
|
Documentation at /docs/config/server.html
|
||||||
|
-->
|
||||||
|
|
||||||
|
<Server port="8005" shutdown="SHUTDOWN">
|
||||||
|
|
||||||
|
<!--Initialize Jasper prior to webapps are loaded. Documentation at /docs/jasper-howto.html
|
||||||
|
-->
|
||||||
|
<Listener className="org.apache.catalina.core.JasperListener" />
|
||||||
|
<!-- JMX Support for the Tomcat server. Documentation at /docs/non-existent.html
|
||||||
|
-->
|
||||||
|
<Listener className="org.apache.catalina.mbeans.ServerLifecycleListener" />
|
||||||
|
|
||||||
|
<!-- A "Service" is a collection of one or more "Connectors" that share
|
||||||
|
a single "Container" Note: A "Service" is not itself a "Container",
|
||||||
|
so you may not define subcomponents such as "Valves" at this level.
|
||||||
|
Documentation at /docs/config/service.html
|
||||||
|
-->
|
||||||
|
<Service name="Catalina">
|
||||||
|
|
||||||
|
<!-- A "Connector" represents an endpoint by which requests are received
|
||||||
|
and responses are returned. Each Connector passes requests on to the
|
||||||
|
associated "Container" (normally an Engine) for processing.
|
||||||
|
|
||||||
|
By default, a non-SSL HTTP/1.1 Connector is established on port 8080.
|
||||||
|
You can also enable an SSL HTTP/1.1 Connector on port 8443 by
|
||||||
|
following the instructions below and uncommenting the second Connector
|
||||||
|
entry. SSL support requires the following steps (see the SSL Config
|
||||||
|
HOWTO in the Tomcat 5 documentation bundle for more detailed
|
||||||
|
instructions):
|
||||||
|
* If your JDK version 1.3 or prior, download and install JSSE 1.0.2 or
|
||||||
|
later, and put the JAR files into "$JAVA_HOME/jre/lib/ext".
|
||||||
|
* Execute:
|
||||||
|
%JAVA_HOME%\bin\keytool -genkey -alias tomcat -keyalg RSA (Windows)
|
||||||
|
$JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA (Unix)
|
||||||
|
with a password value of "changeit" for both the certificate and
|
||||||
|
the keystore itself.
|
||||||
|
|
||||||
|
By default, DNS lookups are enabled when a web application calls
|
||||||
|
request.getRemoteHost(). This can have an adverse impact on
|
||||||
|
performance, so you can disable it by setting the
|
||||||
|
"enableLookups" attribute to "false". When DNS lookups are disabled,
|
||||||
|
request.getRemoteHost() will return the String version of the
|
||||||
|
IP address of the remote client.
|
||||||
|
-->
|
||||||
|
|
||||||
|
<!-- Define a non-SSL HTTP/1.1 Connector on port 8080 -->
|
||||||
|
<Connector port="8080" protocol="HTTP/1.1"
|
||||||
|
maxHttpHeaderSize="8192"
|
||||||
|
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
|
||||||
|
enableLookups="false" redirectPort="8443" acceptCount="100"
|
||||||
|
connectionTimeout="20000" disableUploadTimeout="true" />
|
||||||
|
<!-- Note : To disable connection timeouts, set connectionTimeout value
|
||||||
|
to 0 -->
|
||||||
|
|
||||||
|
<!-- Note : To use gzip compression you could set the following properties :
|
||||||
|
|
||||||
|
compression="on"
|
||||||
|
compressionMinSize="2048"
|
||||||
|
noCompressionUserAgents="gozilla, traviata"
|
||||||
|
compressableMimeType="text/html,text/xml"
|
||||||
|
-->
|
||||||
|
|
||||||
|
<!-- SSL support requires the following steps (see the SSL Config
|
||||||
|
HOWTO in the Tomcat 6 documentation bundle for more detailed
|
||||||
|
instructions):
|
||||||
|
* Execute:
|
||||||
|
%JAVA_HOME%\bin\keytool -genkey -alias tomcat -keyalg RSA (Windows)
|
||||||
|
$JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA (Unix)
|
||||||
|
with a password value of "changeit" for both the certificate and
|
||||||
|
the keystore itself.
|
||||||
|
-->
|
||||||
|
<!-- Define a SSL HTTP/1.1 Connector on port 8443 -->
|
||||||
|
<Connector port="8443" maxHttpHeaderSize="8192"
|
||||||
|
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
|
||||||
|
enableLookups="false" disableUploadTimeout="true"
|
||||||
|
acceptCount="100" scheme="https" secure="true" SSLEnabled="true"
|
||||||
|
clientAuth="false"
|
||||||
|
keyAlias="tomcat" keystorePass="changeit"
|
||||||
|
sslProtocol="TLS" />
|
||||||
|
|
||||||
|
<!-- Define an AJP 1.3 Connector on port 8009 -->
|
||||||
|
<Connector port="8009"
|
||||||
|
enableLookups="false" redirectPort="8443" protocol="AJP/1.3" />
|
||||||
|
|
||||||
|
<!-- An Engine represents the entry point (within Catalina) that processes
|
||||||
|
every request. The Engine implementation for Tomcat stand alone
|
||||||
|
analyzes the HTTP headers included with the request, and passes them
|
||||||
|
on to the appropriate Host (virtual host). -->
|
||||||
|
|
||||||
|
<!-- You should set jvmRoute to support load-balancing via AJP ie :
|
||||||
|
<Engine name="Standalone" defaultHost="localhost" jvmRoute="jvm1">
|
||||||
|
-->
|
||||||
|
|
||||||
|
<!-- Define the top level container in our container hierarchy -->
|
||||||
|
<Engine name="Catalina" defaultHost="localhost">
|
||||||
|
|
||||||
|
<!-- Define the default virtual host
|
||||||
|
Note: XML Schema validation will not work with Xerces 2.2.
|
||||||
|
-->
|
||||||
|
<Host name="localhost" appBase="webapps"
|
||||||
|
unpackWARs="true" autoDeploy="true"
|
||||||
|
xmlValidation="false" xmlNamespaceAware="false">
|
||||||
|
|
||||||
|
</Host>
|
||||||
|
|
||||||
|
</Engine>
|
||||||
|
|
||||||
|
</Service>
|
||||||
|
|
||||||
|
</Server>
|
Loading…
Reference in New Issue